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AMENDMENT AND PRESENTATION OF CLAIMS 

Please replace all prior claims in the present application with the following claims, in 
which claims 1, 2, 20, 21 and 38 are currently amended, and claim 40 is newly presented. 

1. (Currently Amended) A network access system, comprising: 

an external processor that invok e s configured to invoke a policy-based service on 
received messages according to a policy rule and to establish a network connection between a 
first network and a second network : and 

a programmable access device having a message interface coupled to said external 
processor and first and second n e twork int e rfac e s through which pack e ts ar e communicated 
with a n e twork configured to enforce the policy rule associated with the network connection, 
wherein said programmable access device includes a packet header filter and a forwarding 
table that is utiliz e d to route for forwarding packets communicat e d between the first network 
and second network through, respectively, a first network interface and a second network 
interface, int e rfac e s, wh e r e in said packet header filter id e ntifi e s identifying messages received 
at firom one of the first network interface and or the second network interface int e rfaces on 
which the policy-based services are is to be implemented ^and pass e s the identified messages 
being passed via the a message interface to the external processor for processing and other 
messages are forwarded correspondingly to the first network or the second network . 
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2. (Currently Amended) The network access system of Claim 1, and further 
comprising a policy server coupled to the external processor, wherein said policy server 
provides poUcy decisions to the external processor via the policy rule . 

3. (Original) The network access system of Claim 2, wherein the policy server is a 
first policy server, and wherein the external processor supports a plurality of policy servers 
including the first policy server. 

4. (Original) The network access system of Claim 2, wherein the external processor 
includes a policy cache that selectively caches policies obtained from the policy server. 



5. (Original) The network access system of Claim 1, wherein the extemal processor 
includes a plurality of service controllers that each implements a respective one of a plurality of 
services. 

6. (Original) The network access system of Claim 5, wherein the plurality of service 
controllers includes primary and secondary service controllers for a particular service, and 
wherein the secondary service controller provides said particular service to said programmable 
access device if said primary service controller fails. 

7. (Original) The network access system of Claim 5, wherein the extemal processor 

comprises at least one signaling controller that, responsive to one of said plurality of service 

controllers, performs network signaling to setup a network connection. 
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8. (Original) The network access system of Claim 1, wherein the programmable access 
device is a first programmable access device, and wherein the external processor includes a 
plurality of programmable access device controllers that each control a respective one of a 
plurality of programmable access devices including said first programmable access device. 

9. (Original) The network access system of Claim 1, and further comprising a network 
management server coupled to at least the external processor. 

10. (Original) The network access system of Claim 9, wherein the network management 
server includes a billing facility that bills customers in accordance with services implemented by 
the extemal processor. 

11. (Original) The network access system of Claim 1, said programmable access device 
further comprising a control interface, coupled to the extemal processor, through which operation 
of the packet header filter and forwarding table is controlled by the extemal processor. 

12. (Original) The network access system of Claim 1, wherein the programmable access 
device ftirther comprises at least one monitor that gathers statistics regarding network traffic and 
a reporting interface through which reporting messages related to the statistics are communicated 
to the extemal processor. 
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13. (Original) The network access system of Claim 1, wherein the packet header filter 
filters packets for service processing based upon protocol information pertaining to protocol 
layers higher than layer 3. 

14. (Original) The network access system of Claim 1, wherein the programmable access 
device fiirther comprises a policer that polices packets by reference to traffic parameters. 

15. (Original) The network access system of Claim 14, wherein the policer comprises a 
marker that marks packets that do not conform with the traffic parameters. 

16. (Original) The network access system of Claim 1, said programmable access device 
further comprising one or more output buffers and a scheduler that schedules the transmission of 
outgoing packets within the one or more output buffers to support multiple quality of service 
classes. 

17. (Original) The network access system of Claim 1, and further comprising an access 
router coupled to the second network interface of the programmable access device. 

18. (Original) The network access system of Claim 17, and further comprising a 
switched access network coupling said access router and the second network interface of the 
programmable access device. 

19. (Original) A network comprising: 

a network access system in accordance with Claim 17; 
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at least one core router coupled to the access router; and 
a core communication link coupled to the core router. 

20. (Currently Amended) A network access system, comprising: 
a poHcy decision point; 

an external processor that invok e s configured to invoke a policy-based service on 
received messages according to a poHcy rule by reference to the policy decision point and to 
establish a network connection between a first network and a second network : 

a programmable access device having a message interface coupled to said external 
processor and first and s e cond n e twork int e rfac e s through which pack e ts ar e communicat e d 
with a n e twork configured to enforce the policy rule associated with the network connection, 
wherein said programmable access device includes a packet header filter and a forwarding 
table that is utiliz e d to rout e for forwarding packets communicat e d between the first network 
and the second network through, respectively, a first network interface and a second network 
interface^ interfac e s, wh e rein said packet header filter id e ntifi e s identifying messages received 
at from on e of the first network interface and or the second network interface int e rfaces on 
which the policy-based services »e is to be implemented ^and pass e s the identified messages 
being passed via the a message interface to the external processor for processing and other 
messages are forwarded correspondingly to the first network or the second network ; and 

an access router coupled between the programmable access device and a network core. 

21 . (Currently Amended) A network access method, comprising: 

in response to receiving a sories of packets at a first network interface of a 
programmable access device, filtering the s e ri e s of packets at the programmable access device 
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to identify messages upon which policy based o e n^icoG ar e to b e implem e nt e d according to a 
policy rule, wherein the first network interface couples to a first network ; 

passing identified messages to an external processor configured to enforce the policy 
rule and to setup a connection with the first network; 

performing service processing on identified messages at said s e rvic e external processor; 

and 

for messages that are not identified, routing packets by reference to a forwarding table 
in the programmable access device «id outputting to tho rout e d pack e ts at a second network 
over a second network interface of the programmable access device^ 

22. (Original) The network access method of Claim 21, and further comprising 
communicating policy decisions to the external processor from a policy server coupled to the 
external processor. 

23. (Original) The network access method of Claim 22, wherein the policy server is a 
first policy server, and the method further comprises coupling a plurality of policy servers 
including the first policy server to the external processor. 

24. (Original) The network access method of Claim 22, wherein the external processor 
includes a policy cache, and wherein the method further comprises selectively caching policies 
obtained from the policy server in the policy cache. 
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25. (Original) The network access method of Claim 21, wherein the external processor 
includes a plurality of service controllers, and wherein the method further comprises 
implementing a respective one of a plurality of services with each of the plurality of service 
controllers. 

26. (Original) The network access method of Claim 25, wherein the plurality of service 
controllers includes primary and secondary service controllers for a particular service, and 
wherein the method further comprises providing said particular service to said programmable 
access device utilizing said secondary service controller if said primary service controller fails. 

27. (Original) The network access method of Claim 25, wherein the external processor 
comprises at least one signaling controller, wherein the method further comprises performing 
network signaling to setup a network connection utilizing the at least one signaling controller. 

28. (Original) The network access method of Claim 21, wherein the programmable 
access device is a first programmable access device and the external processor includes a 
plurality of programmable access device controllers, said method further comprising controlling 
each of a plurality of programmable access devices including said first programmable access 
device with a respective one of said plurality of programmable access device controllers, 

29. (Original) The network access method of Claim 21, and further comprising coupling 
a network management server at least the external processor. 
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30. (Original) The network access method of Claim 29, and further comprising billing 
customers in accordance with services implemented by the external processor utilizing a bilHng 
facility of the network management server. 

31. (Original) The network access method of Claim 21, said programmable access device 
further comprising a control interface coupled to the external processor, said method further 
comprising coupling the control interface to the external processor and controlling operation of 
the packet header filter by the external processor through the control interface. 

32. (Original) The network access method of Claim 21, wherein the programmable 
access device further comprises at least one monitor, said method further comprising gathering 
statistics regarding network traffic utilizing the at least one monitor and communicating reporting 
messages related to the statistics to the extemal processor via a reporting interface. 

33. (Original) The network access method of Claim 21, wherein filtering comprises 
filtering packets for service processing based upon protocol information pertaining to protocol 
layers higher than layer 3. 

34. (Original) The network access method of Claim 21, wherein the programmable 
access device further comprises a policer and said method further comprises policing packets by 
reference to traffic parameters. 
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35. (Original) The network access method of Claim 34, wherein the policer comprises a 
marker and said method further comprises marking packets that do not conform with the traffic 
parameters. 

36. (Original) The network access method of Claim 21, said programmable access device 
further comprising one or more output buffers and a scheduler, wherein the method further 
comprises scheduling the transmission of outgoing packets within the one or more output buffers 
to support multiple quality of service classes. 

37. (Original) The network access method of Claim 21, and further comprising coupling 
an access router to the second network interface of the programmable access device and 
transmitting network traffic from the programmable access device to the access router. 

38. (Currently Amended) The network access method of Claim 37, wherein coupling 
said access router comprises coupling said access router to the s e cond network interface of the 
programmable access device with a switched access network. 

39. (Original) The network access method of Claim 21, wherein passing messages to the 
external processor comprises passing messages via an intermediate network. 

40. (New) A system for providing distributed control of communication services, the 
system comprising: 
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an external processing module configured to provide signaling for establishment and 
teardown of a connection between a first network and a second network, the external 
processing module being further configured to apply a policy rule on traffic flow fi-om the first 
network over the connection; and 

an access module configured to communicate with a customer premise equipment 
coupled to the first network, the access module being configurable by the external processing 
module to support the communication services, wherein the access module selectively diverts 
portions of the traffic flow to the external processing module for enforcement of the policy 
rule, and a remaining portion of the traffic flow is forwarded to the second network. 
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